[Bug-gnuzilla] IceCat 60.3.0 Release

* A set of companion extensions for LibreJS by Nathan Nichols (https://addons.mozilla.org/en-US/firefox/user/NateN1222/) are pre-installed, and provide workarounds to use some services at USPS, RSF.org, SumOfUs.org, pay.gov, McDonald's, goteo.org and Google Docs without using nonfree JavaScript.

Hack Brief: Someone Posted Private Facebook Messages From 81,000 Accounts

Hack Brief: Someone Posted Private Facebook Messages From 81,000 Accounts

It’s not clear who’s responsible for stealing the Facebook data, but the BBC says one of the websites where the stolen information was posted appears to have been set up in Saint Petersburg, Russia.

Firefox, Chrome and the Future of Trustworthy Extensions

“Beginning in Chrome 70, users will have the choice to restrict extension host access to a custom list of sites, or to configure extensions to require a click to gain access to the current page.” Meanwhile Mozilla will continue to look for ways Firefox can provide more permission control to a majority of extension users.

Signal Upgrade Process Leaves Unencrypted Messages on Disk

Signal Upgrade Process Leaves Unencrypted Messages on Disk

Signal is a communication app that prides itself on offering encrypted messaging, but fails to provide that same protection when performing an upgrade from its Chrome extension to the desktop version, as its exports a user's messages as unencrypted text files.

Google Ads Begins Recording Some Calls Initiated by Call Extensions

Google Ads Begins Recording Some Calls Initiated by Call Extensions

When a user initiates a call from a call-only ad or call extension they will hear a short message informing them that the call may be recorded by Google for quality assurance.

Latest Privacy Badger eliminates some Google tracking

Latest Privacy Badger eliminates some Google tracking

The Electronic Frontier Foundation (EFF) released a new version of the organization's Privacy Badger extension that is designed to improve user privacy while using desktop browsers it supports. The new Privacy Badger takes care of link tracking on these three Google properties automatically.

Cyber security awareness month: top practices for next-level privacy and anonymity

Cyber security awareness month: top practices for next-level privacy and anonymity

From software programs to privacy settings and browser extensions, this is a user manual in the hopes of raising awareness and staying secure online. Encrypted clouds are not that popular but it’s a great tool to keep your files secure and private, not to mention available at all times from anywhere.

UBlock Origin can block JavaScript by default now

UBlock Origin can block JavaScript by default now

The new option of uBlock Origin 1.17.0 gives users even better control when it comes to blocking content from running automatically on sites that they visit in any of the supported browsers. Open the uBlock Origin settings.

Someone Hijacked MEGA Chrome Extension to Steal Users' Passwords

Someone Hijacked MEGA Chrome Extension to Steal Users' Passwords

"You are only affected if you had the MEGA Chrome extension installed at the time of the incident, autoupdate enabled, and you accepted the additional permission, or if you freshly installed version 3.39.4," the company warned.

Rogue MEGA Chrome Extension Stole Passwords and Crypto Keys

Rogue MEGA Chrome Extension Stole Passwords and Crypto Keys

According to a user posting on Reddit, the extension also has the ability to steal private keys to cryptocurrency wallets affecting MyEtherWallet, MyMonero, and Idex.market utilizing the following code.:

Guess What: Ad Blockers Don't Block Ads That Well

Guess What: Ad Blockers Don't Block Ads That Well

"For the Chromium-based browsers (Google Chrome and Opera), we found that because of the built-in PDF reader, an adversary or tracker can still initiate authenticated requests to third-parties," the paper said.

Spyware in browser extensions — it’s worse than you think

54.86.66.252 - - [19/Aug/2018:20:37:26 +0200] "GET /clearly-this-is-a-honeypot-for-big-star-labs/ HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25" 54.86.66.252 - - [19/Aug/2018:20:37:26 +0200] "GET /clearly-this-is-a-honeypot-for-big-star-labs/ HTTP/1.1" 200 257 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25"